blob: d1dc0ad9591eab8ec4081f02c3605638e5f52679 [file] [log] [blame]
# Class: fail2ban::params
# This class defines default parameters used by the main module class fail2ban
# Operating Systems differences in names and paths are addressed here
# == Variables
# Refer to fail2ban class for the variables defined here.
# == Usage
# This class is not intended to be used directly.
# It may be imported or inherited by other classes
class fail2ban::params {
### Application related parameters
$package = $::operatingsystem ? {
default => 'fail2ban',
$service = $::operatingsystem ? {
default => 'fail2ban',
$service_status = $::operatingsystem ? {
default => true,
$process = $::operatingsystem ? {
default => 'fail2ban',
$process_args = $::operatingsystem ? {
default => '',
$process_user = $::operatingsystem ? {
default => 'fail2ban',
$config_dir = $::operatingsystem ? {
default => '/etc/fail2ban',
$config_file = $::operatingsystem ? {
default => '/etc/fail2ban/fail2ban.local',
$config_file_mode = $::operatingsystem ? {
default => '0644',
$config_file_owner = $::operatingsystem ? {
default => 'root',
$config_file_group = $::operatingsystem ? {
default => 'root',
# Define how you want to manage jails configuration:
# "file" - To provide jails stanzas as a normal file
# "concat" - To build them up using different fragments
# - This option, preferred, permits the use of the
# fail2ban::jail define
$jails_config = ''
$jails_file = $::operatingsystem ? {
default => '/etc/fail2ban/jail.local',
$jails_file_mode = $::operatingsystem ? {
default => '0644',
$jails_file_owner = $::operatingsystem ? {
default => 'root',
$jails_file_group = $::operatingsystem ? {
default => 'root',
$config_file_init = $::operatingsystem ? {
/(?i:Debian|Ubuntu|Mint)/ => '/etc/default/fail2ban',
default => '/etc/sysconfig/fail2ban',
$pid_file = $::operatingsystem ? {
/(?i:Debian|Ubuntu|Mint)/ => '/var/run/fail2ban/',
default => '/var/run/',
$data_dir = $::operatingsystem ? {
default => '/etc/fail2ban',
$log_dir = $::operatingsystem ? {
default => '/var/log/fail2ban',
$log_file = $::operatingsystem ? {
default => '/var/log/fail2ban/fail2ban.log',
$log_level = '3'
$socket = '/var/run/fail2ban/fail2ban.sock'
$ignoreip = ['']
$bantime = '600'
$findtime = '600'
$maxretry = '5'
$backend = 'auto'
$mailto = "hostmaster@${::domain}"
$banaction = 'iptables-multiport'
$mta = 'sendmail'
$jails_protocol = 'tcp'
$jails_chain = 'INPUT'
$jails = ''
$jails_source = ''
$jails_template = ''
$jails_template_header = 'fail2ban/concat/jail.local-header.erb'
$jails_template_footer = 'fail2ban/concat/jail.local-footer.erb'
# General Settings
$my_class = ''
$source = ''
$template = ''
$source_dir = ''
$source_dir_purge = false
$options = ''
$service_autorestart = true
$version = 'present'
$absent = false
$disable = false
$disableboot = false
### General module variables that can have a site or per module default
$monitor = false
$monitor_tool = ''
$monitor_target = $::ipaddress
$puppi = false
$puppi_helper = 'standard'
$debug = false
$audit_only = false
$noops = false